CIRT Senior Manager

We are seeking an accomplished Cyber Incident Response Team (CIRT) Senior Manager / Manager with a proven track record in Information Security and Incident Response. The ideal candidate will bring 6+ years of hands-on experience in threat detection, incident management, and cyber forensics.

In this role, you will be a key leader of our Blue Team, driving rapid and effective responses to cyber threats, improving operational efficiency, and fostering innovation in our incident response processes. You will collaborate with stakeholders across the business to strengthen our defenses and build a proactive security posture. This role offers flexible work arrangements, including the possibility of remote work.

Key Responsibilities:

• Lead and coordinate responses to high-impact cyber incidents, ensuring timely containment, eradication, and recovery.

• Investigate and remediate security threats using EDR, SIEM, forensic tools, and other advanced security tools.

• Integrate and optimize incident response workflows across cross-functional teams.

• Drive the automation and enhancement of incident detection, triage, and response processes.

• Stay ahead of emerging threats by continuously researching and implementing new security technologies and strategies.

• Mentor, train, and support junior team members, fostering skill development and operational excellence.

Qualifications

• Cyber Incident Response (+6 years – Advanced)

• Strong knowledge of networking, cloud platforms (AWS, Azure, GCP), and serverless architectures.

• Hands-on experience with EDR, SIEM, threat intelligence platforms, and forensic tools.

• Solid understanding of attack techniques (MITRE ATT&CK), malware analysis, and digital forensics.

• Demonstrated ability to make sound, rapid decisions in high-pressure security incidents.

• Excellent leadership, communication, and team mentoring skills.

• Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field, or equivalent experience.

• Excellent oral and written English.

• Relevant certifications such as CISSP, CISM, or SANS GIAC are a plus.

• Expertise in Windows, Linux, and macOS internals, including system architecture, troubleshooting, and forensic analysis.

Locations

Gdansk, Krakow, Lodz, Warsaw, Wroclaw